Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote: > > We could avoid the rewrite for connections that are not being forwarded, > > but get_unique_tuple() and the callers don't propagate the required hook > > information for this. > > Probably you can scratch a bit to store in the struct nf_conn object > if this is locally generated flows? Yes, that's doable.
